919702212971da51cad746e146e2382e15e5f86dfa4a92b2be3137ef351e11ea

Analysis

max time kernel
13s
max time network
155s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
13/09/2024, 06:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

dde2efe99a089602af84418fab269f19_JaffaCakes118.apk
Size

11.1MB
MD5

dde2efe99a089602af84418fab269f19
SHA1

96278fbb9d1db498169fc95b6350175fee95a0ee
SHA256

919702212971da51cad746e146e2382e15e5f86dfa4a92b2be3137ef351e11ea
SHA512

abb2a6f1a6f474b4b3f9c41f61b8058e184d4c2aa555f087084be31b7b2f85114a5c0cd40a85795c8cd247df30bf18626015d1b58d7f1bcf10f4c060f0da47bb
SSDEEP

196608:btGDuD3rh6SF6VH/TNnDRFQmrzEWAHQfUR8K7BfRsc/7b95rfAKXn:bQDyV6AETJjQm/EvQfURR7B9/7bnrfAS

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.dotemu.lba/files/kuaiyouxi/datas/res/5/dex	5064	com.dotemu.lba

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.dotemu.lba

com.dotemu.lba
1⤵
- Loads dropped Dex/Jar
- Queries information about the current Wi-Fi connection
PID:5064

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.dotemu.lba/files/kuaiyouxi/datas/config/checkupdate

Filesize
8B

MD5
b1443f341b65c822db804401116f9fc1

SHA1
7cad8f4ca2ac3c291217d235a91a1194be8cde05

SHA256
ddfd17148876db4309ef91d4f385820f68ae19bf337b0dd910f088596a1b2263

SHA512
546aab649ffb7ab3d0ecf2c4bba7fc0617fb93e27f913cf23046001a190d64a05c75d655bae263e5130c36575553924ada8db8273494e90b5bdca2b0a2fee70c

Download Submit
/data/data/com.dotemu.lba/files/kuaiyouxi/datas/config/md5

Filesize
32B

MD5
5554ece474c318bc136664f37f24df26

SHA1
61635720db356f0859a4b1123dac142787c0ef39

SHA256
be8c4fce84ad2e1205057728b92f5d1771304e16c24877e9d0a421d8d104f128

SHA512
3b2399490a8f657f9ed78ce3b51d3bb1ec34d1c74491bb7f4078fcadeaa298656f49987f77574dd1a598d61da9af71dd0965bf4808c36223a9e07745bfc04070

Download Submit
/data/data/com.dotemu.lba/files/kuaiyouxi/datas/config/version

Filesize
10B

MD5
1528208168dd31c3aed62deed969609c

SHA1
088b97f3c2143427f3ec6657ad2b1261e34ca74b

SHA256
a7296c1d70ac588139f8f486925bdcdeeb56165d35e76026277f79056bff1d91

SHA512
804d850632432db88c3e67a590d34d8efce2ba360c650bc38ffc068357c2e8f724391d610e8461e3b8b9461819a2a8f3df8fad91edd56ce2b6886181fa7c8c07

Download Submit
/data/data/com.dotemu.lba/files/kuaiyouxi/datas/res/5/dex

Filesize
752KB

MD5
d7ee9b7df16f958ac8c281c76dd1c43c

SHA1
394bc505c0dae268d27a7d2e3881e43f2260459c

SHA256
22c64976a217dbc29a24cb7841f6230e2b195a708f00adf037e0e462cd5414b0

SHA512
131ece3c828588c41002978ae1633eb595f101126629fad1d508e026e9fc587a1343c3bf4b01ccaf8b2ec54beea1270bd56e51b8106156ccec67f4f82ded4eb5

Download Submit
/data/data/com.dotemu.lba/files/kuaiyouxi/datas/res/5/pack

Filesize
2.2MB

MD5
47311bc5c574392b948fa215bd8d7c1c

SHA1
0af565d17e8c1e6aef3bcf174c8b764132b69eec

SHA256
cd65b45eb9bfb159d662daafa595466d9a9fb630c4bb8e2dfc63b75926186b13

SHA512
95eb1135797f9d65b87046ed1fd8ba7e5b32da6e0b7a3e63931b5b384e877a02be4cb44f812d009475075342bebd2d4a723220fa4da91e7165b9ffd3aedd33b9

Download Submit
/data/user/0/com.dotemu.lba/files/kuaiyouxi/datas/res/5/dex

Filesize
1.7MB

MD5
a81cc79b161221a62ace1dd0d9a59ba2

SHA1
b8cb481a065cd1db1e924e0aed9e348e6b4bb55f

SHA256
60021f6f63b4d96959002c5fcdffcb4a3c253118432e39af4205e061b96b49f1

SHA512
c1a1ee776d302d14eaefb335b55d13f6f272ead4fdb02e3c26ce3bf3a564d870675fd446ecd44c1d1ef6a072759a0f23e46749ab4ca20ce4021366cfdc73b79b

Download Submit
/storage/emulated/0/kuaiyouxi/datas/res/5/update

Filesize
2.2MB

MD5
b8fc3e48c9cd77d13e87db966c591ff6

SHA1
bfd9828cebc30ee6c3b0e53f1b8bab96469e8cdb

SHA256
0582c34ae4cbd9625c3c7bfdfdfb4a21090b85d33711ab6eee6dccdd8c9fe00e

SHA512
6499b1bdde3c14bbc3b0d0843c6054acdb26f759a625c13c716757b5c7d4c14d44ea6c05e8f81c412832e4b6c7831669848b33ceb0e51adddba4154ed69a5c96

Download Submit
/storage/emulated/0/kuaiyouxi/datas/res/drawable/launcher/default.png

Filesize
850KB

MD5
ba84d9f6572405d13a09f20802c996df

SHA1
d64cd41f8a5ff5f3ee6ec3297a3fd31a36cdd079

SHA256
a50c634839a883bd961c5e7267270b34acfa71900101ad0a3a45447284619d1a

SHA512
f5c8e1eb8d5b16ed8c0a086d0542f7d1e440c6c0ebc23023102754da0700ac77f13c46cf31ece3d5f02cea200fbdf842ff2dd128d6903e03ab74f4085ce6a4fa

Download Submit